lulzette/base-system
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Tweaks

Browse Source
This commit is contained in:
lulzette 2022-12-11 13:37:51 +00:00
parent 4332cf4362
commit 0690f7decc
5 changed files with 22 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ansible.cfg
View File

@ -2,7 +2,7 @@
INVENTORY = ~/inventory INVENTORY = ~/inventory
pipelining = True pipelining = True
strategy = free #strategy = free
[ssh_connection] [ssh_connection]
ssh_args = -o ControlMaster=auto -o ControlPersist=60s ssh_args = -o ControlMaster=auto -o ControlPersist=60s

7
roles/configs/files/bashrc
View File

@ -16,8 +16,8 @@ HISTCONTROL=ignoreboth
shopt -s histappend shopt -s histappend
# for setting history length see HISTSIZE and HISTFILESIZE in bash(1) # for setting history length see HISTSIZE and HISTFILESIZE in bash(1)
HISTSIZE=1000 HISTSIZE=100000
HISTFILESIZE=2000 HISTFILESIZE=200000
# check the window size after each command and, if necessary, # check the window size after each command and, if necessary,
# update the values of LINES and COLUMNS. # update the values of LINES and COLUMNS.
@ -288,3 +288,6 @@ alias apt="sudo apt"
export PS1='\e[0;35m\t \e[0;32m\u@\h:\w\e[m\n\$ ' export PS1='\e[0;35m\t \e[0;32m\u@\h:\w\e[m\n\$ '
figlet `hostname` figlet `hostname`
bind '"\e[A": history-search-backward'
bind '"\e[B": history-search-forward'

15
roles/configs/tasks/root.yml
View File

@ -56,3 +56,18 @@
path: /etc/update-motd.d/10-help-text path: /etc/update-motd.d/10-help-text
mode: 644 mode: 644
when: ansible_facts['os_family'] == "Debian" when: ansible_facts['os_family'] == "Debian"
- name: Check for OMB
stat:
path: "{{ ansible_user_dir }}/.oh-my-bash"
register: omb_flag_root
- debug:
msg: 'OMB is not installed for root'
when: not omb_flag_root.stat.exists
- name: Put simple bashrc config
template:
src: files/bashrc
dest: "/root/.bashrc"
when: not omb_flag_root.stat.exists

1
roles/packages/tasks/main.yml
View File

@ -27,6 +27,7 @@
notify: notify:
- Make initramfs - Make initramfs
when: ansible_facts['os_family'] == "Debian" when: ansible_facts['os_family'] == "Debian"
ignore_errors: true # TODO
- name: Install CentOS epel - name: Install CentOS epel
yum: yum:

36
roles/ssh/files/sshd_config
View File

@ -3,19 +3,10 @@ Port {{ ssh_port }}
#ListenAddress 0.0.0.0 #ListenAddress 0.0.0.0
#ListenAddress :: #ListenAddress ::
#HostKey /etc/ssh/ssh_host_rsa_key
#HostKey /etc/ssh/ssh_host_ecdsa_key
#HostKey /etc/ssh/ssh_host_ed25519_key
# Ciphers and keying
#RekeyLimit default none
# Logging # Logging
#SyslogFacility AUTH #SyslogFacility AUTH
#LogLevel INFO #LogLevel INFO
# Authentication:
#LoginGraceTime 2m #LoginGraceTime 2m
PermitRootLogin prohibit-password PermitRootLogin prohibit-password
#StrictModes yes #StrictModes yes
@ -27,39 +18,12 @@ AuthorizedKeysFile .ssh/authorized_keys .ssh/authorized_keys2 /etc/ssh/auth_keys
PasswordAuthentication no PasswordAuthentication no
PermitEmptyPasswords no PermitEmptyPasswords no
# Change to yes to enable challenge-response passwords (beware issues with
# some PAM modules and threads)
ChallengeResponseAuthentication no ChallengeResponseAuthentication no
UsePAM yes UsePAM yes
#AllowAgentForwarding yes
#AllowTcpForwarding yes
#GatewayPorts no
X11Forwarding yes X11Forwarding yes
#X11DisplayOffset 10
#X11UseLocalhost yes
#PermitTTY yes
PrintMotd no PrintMotd no
PrintLastLog yes PrintLastLog yes
#TCPKeepAlive yes
#PermitUserEnvironment no
#Compression delayed
#ClientAliveInterval 0
#ClientAliveCountMax 3
UseDNS no UseDNS no
#PidFile /var/run/sshd.pid
#MaxStartups 10:30:100
#PermitTunnel no
#ChrootDirectory none
#VersionAddendum none
# no default banner path
#Banner none
# Allow client to pass locale environment variables
AcceptEnv LANG LC_* AcceptEnv LANG LC_*
# override default of no subsystems
Subsystem sftp /usr/lib/openssh/sftp-server Subsystem sftp /usr/lib/openssh/sftp-server